Security Hero Rotating Header Image

Cisco ASA5520 Web VPN Host Header XSS

RE: Cisco ASA5520 Web VPN Host Header XSS

<!– Envelope-to: email@address Delivery-date: Fri, 24 Apr 2009 17:26:01 +0100 Received: from outgoing.securityfocus.com ([205.206.231.27] helo=outgoing3.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1LxODw-000300-Ti for email@address; Fri, 24 Apr 2009 17:26:01 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing3.securityfocus.com (Postfix) with QMQP id 7991F237570; Fri, 24 Apr 2009 09:29:18 -0600 (MDT) Mailing-List: contact bugtraq-help@securityfocus.com; run by ezmlm Precedence: bulk List-Id: <bugtraq.list-id.securityfocus.com> List-Post: <mailto:bugtraq@securityfocus.com> List-Help: <mailto:bugtraq-help@securityfocus.com> List-Unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com> List-Subscribe: <mailto:bugtraq-subscribe@securityfocus.com> Delivered-To: mailing list bugtraq@securityfocus.com Delivered-To: moderator for bugtraq@securityfocus.com Received: (qmail 2625 invoked from network); 24 Apr 2009 14:37:43 -0000 X-IronPort-AV: E=Sophos;i="4.40,241,1238976000"; d="scan'208,217";a="176429511" X-MimeOLE: Produced By Microsoft Exchange V6.5 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Message-ID: <98AE08B66FAD1742BED6CB9522B7312206EE1391@xmb-rtp-20d.amer.cisco.com> In-Reply-To: <63ac005e0903310317n24ce45a4mb81ab872c73e1fcb@mail.gmail.com> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Cisco ASA5520 Web VPN Host Header XSS Thread-Index: AcnET6vcO/JS9hp5Th630i1wgwXKQAAm3rkg References: <63ac005e0903310317n24ce45a4mb81ab872c73e1fcb@mail.gmail.com> "bugtraq" <bugtraq@securityfocus.com>, "fd" <full-disclosure@lists.grok.org.uk> X-OriginalArrivalTime: 24 Apr 2009 14:45:26.0589 (UTC) FILETIME=[4E3F26D0:01C9C4EB] DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=3315; t=1240584328; x=1241448328; c=relaxed/simple; s=sjdkim2002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=marmclau@cisco.com; z=From:=20=22Mark-David=20McLaughlin=20(marmclau)=22=20<marm clau@cisco.com> |Subject:=20RE=3A=20Cisco=20ASA5520=20Web=20VPN=20Host=20He ader=20XSS |Sender:=20; bh=7gskpkHr7wVj1N3WwviYDW1/Hf8WeSoQroDEntMrE9E=; b=uAZ7XJ4mYXIisMBOthTPVf6xoGIIIp+rbxlMmbzfzxQ66uI+cWMFRSTTAm pB/Bj//4vXNlh7w6IMdUn1BBGxmHfCnij3uOzRCVMttOgfYJupbo4H++Z0dv pvMvV0cNOU; Authentication-Results: sj-dkim-2; header.From=marmclau@cisco.com; dkim=pass ( sig from cisco.com/sjdkim2002 verified; ); X-IMAPbase: 1176125385 8880 Status: O X-UID: 8880 Content-Length: 3203 X-Keywords:

Leave a Reply

Your email address will not be published. Required fields are marked *